CVE-2024-39331 | GNU Emacs up to 29.3 lisp/ol.el org-link-expand-abbrev os command injection (Nessus ID 207747)

9月 29, 2024
9:56 pm

A vulnerability was found in GNU Emacs up to 29.3. It has been rated as critical. This issue affects the function org-link-expand-abbrev of the file lisp/ol.el. The manipulation leads to os command injection.

The identification of this vulnerability is CVE-2024-39331. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-39331 | GNU Emacs up to 29.3 lisp/ol.el org-link-expand-abbrev os command injection (Nessus ID 207747)

Elvescore.io

Recent Posts

CVE-2024-11852 – Elementor Addons (Header Footer, Template Library, Dynamic Grid, Carousel and Remote Arrows) WordPress Unauthenticated Data Access Vulnerability

CVE-2024-12884 – Codezips E-Commerce Website SQL Injection

CVE-2024-51463 – IBM i SSRF

CVE-2024-51464 – IBM Navigator for i Access Bypass Vulnerability

CVE-2024-12883 – Code-projects Job Recruitment Cross Site Scripting

CVE-2024-12875 – Easy Digital Downloads WordPress Directory Traversal Vulnerability

CVE-2024-39331 | GNU Emacs up to 29.3 lisp/ol.el org-link-expand-abbrev os command injection (Nessus ID 207747)

CVE-2024-39331 | GNU Emacs up to 29.3 lisp/ol.el org-link-expand-abbrev os command injection (Nessus ID 207747)